[Owasp-cincinnati] ASP.NET POET Vulnerability

• Previous message: [Owasp-cincinnati] Selected Security News For The OWASP List
• Next message: [Owasp-cincinnati] InfoSec And AppSec News Week of Sunday, September 19, 2010
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Notable comments: 

..What they could do is just to be able to decrypt/modify the cookies which
are protected by .NET framework

. no security threat to note unless you put sensitive data in cookies.

 

More info herein:

http://threatpost.com/en_us/blogs/new-crypto-attack-affects-millions-aspnet-
apps-091310

 

Regards

 

Marco Mirko Morana

OWASP Cincinnati USA Chapter Lead

Writing Secure Software Blogger

Application Threat Modeling Book Author

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-cincinnati/attachments/20100921/d34be260/attachment.html 

• Previous message: [Owasp-cincinnati] Selected Security News For The OWASP List
• Next message: [Owasp-cincinnati] InfoSec And AppSec News Week of Sunday, September 19, 2010
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]